Help
wat if i get my virtual machine infected, could it transfer?
Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.
Page 1 of 1
virus in virtual pc?
Back to top
#2
- Bleepin' Night Watchman
-
- Group: Moderator
- Posts: 7,329
- Joined: 05-December 05
- Gender:Not Telling
- Location:Right behind you
Posted 23 July 2009 - 01:26 PM
Generally speaking, Virtual Machines are walled off almost completely from the host operating system. Usually, the only connection from the VM to the host which is "visible" to programs running in the VM is the virtual network connection. So an infection could be transferred from a VM to a host if you transfer an infected file over the virtual connection or the malware in the VM can copy itself to other computers over a LAN.
Since you're posting in the Linux forum, I'm assuming that your main operating system is Linux and that you are (or want to) running Windows in a virtual machine like VMware, VirtualBox, or QEMU. Should the virtualized Windows session get infected the Linux host will not be infected.
Cross-platform malware is extremely, staggeringly rare. This is partly because Windows and Linux have different formats for executable files. Windows uses the Portable Executable (PE) format whereas Linux uses the Executable and Linkable Format (ELF) which are not compatible. However, their have been examples of malware which takes advantage of platform-independent or 'workalike' runtime environments such as .NET/Mono and java [Link].
The long and short of it, though, is that provided the host and guest operating systems are different (like Linux and Windows) then there is only an extremely remote and purely theoretical danger of anything like this happening.
Since you're posting in the Linux forum, I'm assuming that your main operating system is Linux and that you are (or want to) running Windows in a virtual machine like VMware, VirtualBox, or QEMU. Should the virtualized Windows session get infected the Linux host will not be infected.
Cross-platform malware is extremely, staggeringly rare. This is partly because Windows and Linux have different formats for executable files. Windows uses the Portable Executable (PE) format whereas Linux uses the Executable and Linkable Format (ELF) which are not compatible. However, their have been examples of malware which takes advantage of platform-independent or 'workalike' runtime environments such as .NET/Mono and java [Link].
The long and short of it, though, is that provided the host and guest operating systems are different (like Linux and Windows) then there is only an extremely remote and purely theoretical danger of anything like this happening.
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.
Boredom Software Stop Highlighting Things
Boredom Software Stop Highlighting Things
#3
- Senior Member
-
- Group: Members
- Posts: 510
- Joined: 13-January 09
Posted 23 July 2009 - 02:26 PM
I notice you recently ran anHJT thread on your XP machine but did not return to the thread to complete the cleaning process: is your present enquiry related to it ?
I know people elsewhere to do run VM's who deliberately 'infect' them to see how the infection affects the computer and how to clean it ; none of them that I know have (yet) reported they have gotten an infection on their main machine
However, a point that does come to mind is...if they infect it deliberately with a Backdoor trojan or similar 'nasty' how then do they 'clean ' it..I guess uninstall the VM and start again
maybe someone can 'drive by' this thread and expand/clarify on that point?
I know people elsewhere to do run VM's who deliberately 'infect' them to see how the infection affects the computer and how to clean it ; none of them that I know have (yet) reported they have gotten an infection on their main machine
However, a point that does come to mind is...if they infect it deliberately with a Backdoor trojan or similar 'nasty' how then do they 'clean ' it..I guess uninstall the VM and start again
maybe someone can 'drive by' this thread and expand/clarify on that point?
#4
- Bleepin' Night Watchman
-
- Group: Moderator
- Posts: 7,329
- Joined: 05-December 05
- Gender:Not Telling
- Location:Right behind you
Posted 23 July 2009 - 03:02 PM
snowdrop, on Jul 23 2009, 12:26 PM, said:
However, a point that does come to mind is...if they infect it deliberately with a Backdoor trojan or similar 'nasty' how then do they 'clean ' it..I guess uninstall the VM and start again
Most VM software can revert to a saved state, eradicating all changes made to the guest since the saved state was created.
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.
Boredom Software Stop Highlighting Things
Boredom Software Stop Highlighting Things
Share this topic:
Page 1 of 1